upnpcont.exe
- File Path:
C:\Windows\SysWOW64\upnpcont.exe
- Description: UPnP Device Host Container
Hashes
| Type |
Hash |
| MD5 |
8079BABD3711AEE2371AA54090DAF987 |
| SHA1 |
4963E4921E238D349812241EDCB564F5C36B6DFD |
| SHA256 |
402D06EFF121D704268B193DD4FE00FD9FE37E8D1C0E1ABE6991F76E036F320F |
| SHA384 |
6BDD935604676EB47E82D11EE6F8D3F6FE23426F95DC1A8C5E11350BAA44E445A15739B01850338B0A8F606A961836A6 |
| SHA512 |
5D7F867EBAFE6F265B896AB43535884DCDB4B4CAE519E8E13D767D02C7F47439C82F58C5B9CBCB122E6BBDBA8A0A371EE8E5773058EB6011E19A169D4B216B0B |
| SSDEEP |
384:Hlhoz7hoJDDHb7mQNb3cktF8/AkNAnYB6LtDc5/ZKMZciW5MW3MUggHiADqPGL:Fhoz78HDX4hrGI/ZXZ0tMUhHGPS |
| IMP |
7B6AE0B2821019CE4C865988D4D48C14 |
| PESHA1 |
66A7B61747D28BBB8AD87C943CD4677D08184421 |
| PE256 |
78697802596957A03D4B53F67706E0030714CA4BD6B4EBA8CEA6A59478CDE3BC |
Runtime Data
Open Handles:
| Path |
Type |
| (RW-) C:\Users\user |
File |
| (RW-) C:\Windows |
File |
| \BaseNamedObjects__ComCatalogCache__ |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000002.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000002.db |
Section |
| \BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2 |
Section |
| \BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 |
Section |
| \BaseNamedObjects\NLS_CodePage_437_3_2_0_0 |
Section |
Loaded Modules:
| Path |
| C:\Windows\SYSTEM32\ntdll.dll |
| C:\Windows\System32\wow64.dll |
| C:\Windows\System32\wow64cpu.dll |
| C:\Windows\System32\wow64win.dll |
| C:\Windows\SysWOW64\upnpcont.exe |
Signature
- Status: Signature verified.
- Serial:
3300000266BD1580EFA75CD6D3000000000266
- Thumbprint:
A4341B9FD50FB9964283220A36A1EF6F6FAA7840
- Issuer: CN=Microsoft Windows Production PCA 2011, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Subject: CN=Microsoft Windows, O=Microsoft Corporation, L=Redmond, S=Washington, C=US
- Original Filename: upnpcont.dll
- Product Name: Microsoft Windows Operating System
- Company Name: Microsoft Corporation
- File Version: 10.0.19041.508 (WinBuild.160101.0800)
- Product Version: 10.0.19041.508
- Language: English (United States)
- Legal Copyright: Microsoft Corporation. All rights reserved.
- Machine Type: 32-bit
File Scan
- VirusTotal Detections: 0/74
- VirusTotal Link: https://www.virustotal.com/gui/file/402d06eff121d704268b193dd4fe00fd9fe37e8d1c0e1abe6991f76e036f320f/detection
File Similarity (ssdeep match)
MIT License. Copyright (c) 2020-2021 Strontic.